Android 4.2 only detects 20% of malware apps

One of the new additions to Android 4.2 was a new scanner designed to check sideloaded apps for potential malware threats. This was seen as a great addition, but the feature has been tested and has not fared well, only detecting about 20% of malicious apps. Of course, as we know by now, only about .5% of all malware is found in the Google Play Store, so Google's Bouncer software has been doing its job. But, that still leaves 95.5% of malware coming from sideloaded apps, which is a concern, especially in places like China where the Play Store isn't always available.

Testing was done by Xuxian Jiang, a professor of computer science at North Carolina State University, who tested 1,260 samples of malicious apps on a Nexus 10 running Android 4.2, and found that the built-in scanner detected only 193, a detection rate of just 15.32%. Jiang then tested Google's malware detection compared to antivirus apps from Avast, Symantec, and Kaspersky, and found the detection rates of the antivirus apps ranged from 51% to 100%, compared with 20% for Google.

There were two reasons that Jiang cites for Google's failure to detect malware that is sideloaded. First, the service uses cryptographic hash signatures to identify apps known to be malicious, but these hash signatures can easily be manipulated and bypassed. Second, the scanner is hosted in the cloud, and doesn't have a client-side option, so if you aren't connected to the web, it can't detect malware at all.

As we said, this isn't much of a concern if you get all of your apps from the Play Store, but if not, you should still be careful about where you get your apps.

21 Comments

Display mode:

1.XPERIA-KNIGHT (unregistered)

"As we said, this isn't much of a concern if you get all of your apps from the Play Store, but if not, you should still be careful about where you get your apps. "

Well thats just common sense, and the same goes for what you purchase from somebody.......Get your stuff off the streets and run the risk of getting ripped off, or you can go to a STORE and purchase things properly......with very minimal risk of getting ripped off

exactly
1) if you want freedom (free install), you have to take your responsibility, it is called life, it is called free choice
2) if you have common sense, watch permissions, you are safe
3) so all this "malware alerts" about Android are based on a lie
4) if you want fascism with minimal malware risk, you can buy an iPhone or WP

my question is, why dont these so called known infected malware apps not get deleted off google play? is it maybe bc they are not really malware like these anti virus companies want you to believe it is. Please review some of these "malware" apps and how they actually affect your device. Im just a little sceptical

3.XPERIA-KNIGHT (unregistered)

Google does delete malware apps, but because there is no app review process on Android, the apps just keep coming. Even so, Google keeps the overall total very very low, and avoids putting in an annoying review delay.

Now I want see a article about all Jailbreaked iOS devices and see how much whatever Apple have to detect malware? Or peoples that also sideload .ipa apps without going through Appstore. However they do it.
Too many article about Android malware, but never about Apple and Microsoft malware detection!

All content (phone reviews, news, specs, info), design and layouts are Copyright 2001-2015 phoneArena.com. All rights reserved. Reproduction in whole or in part or in any form or medium without written permission is prohibited! Privacy . Terms of use . Cookies . Team